Financial Calculator Pro

Security checks across malware telemetry and agentic risk

Overview

This appears to be a straightforward financial calculator; the main things to notice are that its web UI can listen on the network and it uses third-party dependencies.

This skill looks benign for local financial calculations. Before using the web UI, be aware that it may be reachable on your network and that it loads/install third-party components; run it on a trusted machine/network and avoid entering highly sensitive financial details unless you restrict the server to localhost.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal

Risk analysis

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

ASI02: Tool Misuse and Exploitation

Low

What this means

On a shared or untrusted network, other devices may be able to access the calculator UI/API, although the artifacts only show calculation endpoints and no file or credential access.

Why it was flagged

The Flask UI listens on all network interfaces, which is broader than a strictly local calculator UI and can make its calculation endpoints reachable from other hosts.

Skill content

app.run(host='0.0.0.0', port=port, debug=False)

Recommendation

Run it only on trusted networks, firewall the chosen port, or change the host binding to 127.0.0.1 if you only need local access.

ASI04: Agentic Supply Chain Vulnerabilities

Low

What this means

Running the launcher can download third-party code into the skill directory, creating normal package supply-chain exposure.

Why it was flagged

The user-directed launcher creates a virtual environment and downloads Flask when needed. This is expected for the web UI, but the package version is not pinned in the launcher.

Skill content

python3 -m venv venv
    venv/bin/pip install flask --quiet

Recommendation

Install from a trusted network/package index and consider pinning Flask to a known-good version.

ASI04: Agentic Supply Chain Vulnerabilities

Low

What this means

If the CDN resource were compromised or unavailable, the browser-side UI could be affected. The provided artifacts do not show exfiltration behavior.

Why it was flagged

The web page loads Chart.js from a third-party CDN. This supports the charting feature and is versioned, but it still executes remote browser JavaScript.

Skill content

<script src="https://cdn.jsdelivr.net/npm/chart.js@4.4.1/dist/chart.umd.min.js"></script>

Recommendation

Use the UI on trusted networks, or vendor the chart library locally with integrity checking if stricter supply-chain control is needed.